Month: December 2018

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a critically important piece of legislation created to introduce minimum security and privacy standards in the healthcare industry. HIPAA is a federal law, organisations […]

The San Diego Unified School District has announced that a phishing attack on its network has affected more than half a million of its staff and current and former students. The San Diego Unified School […]

The Clearwater CyberIntelligence Institute (CCI) has announce that it has identified the three most critical cybersecurity risks facing the organisations in the healthcare industry. CCI, part of Clearwater Compliance, a leading healthcare cyber risk management […]

A flaw has been identified in Orange Livebox ADSL modems that causes the modems to “leak” WiFi credentials. Orange Livebox is an ADSL wireless router used to deliver broadband services to customers of Orange S.A., […]

The final version of the Risk Management Framework (RMF 2.0) has been released by the National Institute of Standards and Technology (NIST). NIST is a non-regulatory agency of the United States Department of Commerce. The […]

Patients affected by a data security incident at LifeBridge Health in March 2018 have filed a lawsuit against the facility. LifeBridge Health, a nonprofit healthcare corporation in Baltimore, Maryland, discovered that malware had infected one […]

The United States Senate has introduced a bill that would introduce new protections for the personal information of individuals online. The bill, entitled the Data Care Act, was proposed by Sen. Brian Schatz (D-HI) on […]

The University of Vermont Health Network has revealed that a data security incident at the facility has affected approximately 32,000 patients. The breach was discovered on October 18, 2018. An unauthorised third-party had gained access […]

The Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) has issued an advisory about a vulnerability that has been identified in certain Medtronic CareLink and Encore Programmers. ICS-CERT, an organisation created to identify and tackle problems […]

The University of Maryland Medical System has recently announced that it has been the victim of a malware attack on its network. The University of Maryland Medical System is a private, not-for-profit corporation that operates […]

In late November, the Department of Justice indicted two Iranian threat actors over the use of SamSam ransomware. However, Department of Homeland Security (DHS) and Federal Bureau of Investigation (FBI) are urging organisations that the threat […]

The American Medical Informatics Association (AMIA) and the American Health Information Management Association (AHIMA) have called for officials to reform the Health Insurance Portability and Accountability Act (HIPAA). The calls for reform were made on […]

The Attorney Generals of a dozen states have filed a lawsuit against Medical Informatics Engineering, a healthcare software and systems developer and NoMoreClipboard, an electronic platform for personal health records. The lawsuit is over the […]

The Department of Health and Human Services’ Office of the National Coordinator for Health Information Technology (ONC) has announced the winners of its Easy EHR Issues Reporting Challenge. ONC is a federal entity that coordinates […]